Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
File: xZKgYJDwFpQNMesbCbrhLZSxlbA.mft (raw, json)
Hash identifier: vJxxfpZfNm3fHhHn+xlSOiIsCyd3OR5aNwcIaBLAJ4Q=
Subject key identifier: 18:FF:ED:FD:D2:D5:A0:C6:58:33:2A:93:7E:CF:CA:6F:6F:23:A3:E7
Authority key identifier: C5:92:A0:60:90:F0:16:94:0D:31:EB:1B:09:BA:E1:2D:94:B1:95:B0
Certificate issuer: /CN=c592a06090f016940d31eb1b09bae12d94b195b0
Certificate serial: 019D2A3C33AA39D7DD347636AE4FBF38435C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
Manifest number: 0768
Signing time: Thu 26 Mar 2026 13:01:21 +0000
Manifest this update: Thu 26 Mar 2026 13:01:21 +0000
Manifest next update: Fri 27 Mar 2026 13:01:21 +0000
Files and hashes: 1: pdjWyCsS6vRt3qgRpmz1-t9Lw4w.roa (hash: iNpMVvC5UiWrjFC/YV4kYZVM+3Z5N79XJuNaeg291pc=)
2: xZKgYJDwFpQNMesbCbrhLZSxlbA.crl (hash: +sTAk5/+t7JkURa7yEBX0RGAyIKN84vTsumaFeuFoxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3c:33:aa:39:d7:dd:34:76:36:ae:4f:bf:38:43:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c592a06090f016940d31eb1b09bae12d94b195b0
Validity
Not Before: Mar 26 13:01:21 2026 GMT
Not After : Mar 27 13:01:21 2026 GMT
Subject: CN=18ffedfdd2d5a0c658332a937ecfca6f6f23a3e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:d8:5c:ca:dd:07:6c:8f:fb:5d:2c:b9:f4:40:
aa:e8:0e:e4:16:03:13:72:fe:31:86:31:bb:e2:ce:
85:83:27:46:97:f0:00:2d:2b:fb:bf:ad:a0:df:a2:
60:83:b7:ed:6d:01:3a:5a:1d:9a:a4:6e:79:4e:f5:
8b:88:db:f3:40:1d:c0:b0:28:40:84:84:4b:76:52:
2c:20:7f:58:f9:88:5e:93:a5:52:d9:59:88:aa:6c:
44:61:6a:7e:af:84:47:8a:8e:e0:8e:28:78:d0:f0:
44:2c:90:18:cd:cc:a2:46:f2:f6:2c:b4:74:4c:f2:
65:0c:92:23:92:b3:9a:78:e8:09:4a:cc:a4:7e:6e:
d2:dd:b6:7d:d0:fe:4a:27:4f:27:8f:90:07:54:a1:
a5:1c:77:21:c5:bf:2c:48:a8:09:32:8d:ba:64:26:
5b:6d:8c:30:90:28:dd:8e:e4:ae:8d:21:f2:72:b7:
46:59:84:04:43:cd:17:8f:c8:fd:a8:59:fe:d7:d0:
a8:ab:75:72:60:c0:e9:c1:9c:36:d8:b3:0a:7f:d2:
90:c3:a7:ab:cb:f9:e8:c2:08:74:e0:e6:aa:a8:6e:
9b:d6:84:4e:54:97:1e:4a:2a:b2:bb:4d:9e:8c:d2:
6e:da:39:b5:a7:ed:2d:a3:7e:25:fa:c1:6c:1b:de:
ec:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:FF:ED:FD:D2:D5:A0:C6:58:33:2A:93:7E:CF:CA:6F:6F:23:A3:E7
X509v3 Authority Key Identifier:
keyid:C5:92:A0:60:90:F0:16:94:0D:31:EB:1B:09:BA:E1:2D:94:B1:95:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:8a:5a:e8:97:59:98:f7:95:6d:29:c4:be:95:7a:ce:4e:71:
a4:c3:7e:b4:c5:03:00:b5:df:48:63:f6:66:24:c3:01:24:40:
f3:0f:77:a1:ba:9e:a9:5f:8e:fa:e8:c9:86:a1:5e:66:31:75:
53:37:de:dc:c1:4b:e9:00:db:ea:99:95:52:81:d7:f1:7f:46:
3c:be:17:32:f0:4f:21:51:82:07:31:18:12:14:50:b0:0a:2b:
53:ba:de:4d:57:f4:b4:3e:13:fe:8d:25:92:42:f2:8b:ff:86:
b0:61:15:8d:05:e4:38:db:d3:68:70:b9:e0:13:fa:76:43:e8:
d0:f0:20:bd:9f:93:77:4b:7c:2d:36:00:14:07:40:fa:93:96:
3f:ab:ff:eb:6a:fe:45:a2:1b:2c:70:7a:af:e5:cc:8c:9f:f6:
61:01:84:0d:e8:4e:e2:65:25:07:b1:4c:d4:0e:14:cb:87:10:
e6:60:5c:2a:f9:c1:9f:d5:db:ce:6e:e6:e0:12:b4:2c:4b:e1:
f2:71:b3:3a:cb:18:24:2e:7c:65:d7:c5:29:37:b4:98:d8:cb:
8f:4e:46:50:80:76:aa:ef:9e:19:56:21:83:77:14:b2:e4:68:
92:e3:a5:63:06:e1:d6:f7:bf:1d:07:d8:f7:db:10:f8:9b:86:
fe:70:c7:de
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0qPDOqOdfdNHY2rk+/OENcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1OTJhMDYwOTBmMDE2OTQwZDMxZWIxYjA5YmFlMTJkOTRi
MTk1YjAwHhcNMjYwMzI2MTMwMTIxWhcNMjYwMzI3MTMwMTIxWjAzMTEwLwYDVQQD
EygxOGZmZWRmZGQyZDVhMGM2NTgzMzJhOTM3ZWNmY2E2ZjZmMjNhM2U3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhthcyt0HbI/7XSy59ECq6A7kFgMT
cv4xhjG74s6FgydGl/AALSv7v62g36Jgg7ftbQE6Wh2apG55TvWLiNvzQB3AsChA
hIRLdlIsIH9Y+Yhek6VS2VmIqmxEYWp+r4RHio7gjih40PBELJAYzcyiRvL2LLR0
TPJlDJIjkrOaeOgJSsykfm7S3bZ90P5KJ08nj5AHVKGlHHchxb8sSKgJMo26ZCZb
bYwwkCjdjuSujSHycrdGWYQEQ80Xj8j9qFn+19Coq3VyYMDpwZw22LMKf9KQw6er
y/nowgh04OaqqG6b1oROVJceSiqyu02ejNJu2jm1p+0to34l+sFsG97sRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBj/7f3S1aDGWDMqk37Pym9vI6PnMB8GA1UdIwQY
MBaAFMWSoGCQ8BaUDTHrGwm64S2UsZWwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveFpLZ1lKRHdGcFFOTWVzYkNicmhMWlN4bGJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS83MDM5MDItNzA2MS00ZWNiLTlkZjEt
YzQ1NjIwMzI2NDkxLzEveFpLZ1lKRHdGcFFOTWVzYkNicmhMWlN4bGJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS83MDM5MDItNzA2MS00ZWNiLTlkZjEtYzQ1NjIwMzI2NDkx
LzEveFpLZ1lKRHdGcFFOTWVzYkNicmhMWlN4bGJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFIpa6JdZ
mPeVbSnEvpV6zk5xpMN+tMUDALXfSGP2ZiTDASRA8w93obqeqV+O+ujJhqFeZjF1
Uzfe3MFL6QDb6pmVUoHX8X9GPL4XMvBPIVGCBzEYEhRQsAorU7reTVf0tD4T/o0l
kkLyi/+GsGEVjQXkONvTaHC54BP6dkPo0PAgvZ+Td0t8LTYAFAdA+pOWP6v/62r+
RaIbLHB6r+XMjJ/2YQGEDehO4mUlB7FM1A4Uy4cQ5mBcKvnBn9Xbzm7m4BK0LEvh
8nGzOssYJC58ZdfFKTe0mNjLj05GUIB2qu+eGVYhg3cUsuRokuOlYwbh1ve/HQfY
99sQ+JuG/nDH3g==
-----END CERTIFICATE-----
Generated at Thu Mar 26 18:28:35 2026 by rpki-client